Section: .. / 1002-exploits /
| /// File Name: |
songforever-shell.txt |
Description:
|
SongForever.com-Clone suffers from a shell upload vulnerability.
| | Author: | indoushka | | File Size: | 2050 | | Last Modified: | Feb 16 17:13:55 2010 |
| MD5 Checksum: | f0df3c28df6310b64ab56063d28d13e1 |
|
| /// File Name: |
southburn-sql.txt |
Description:
|
Southburn Web suffers from a remote SQL injection vulnerability.
| | Author: | AtT4CKxT3rR0r1ST | | File Size: | 1161 | | Last Modified: | Feb 15 14:53:48 2010 |
| MD5 Checksum: | dde36a8a85cdadda2d1ec30071547424 |
|
| /// File Name: |
spectrumswm-xss.txt |
Description:
|
Spectrum Software WebManager CMS suffers from a cross site scripting vulnerability.
| | Author: | hacker at sr.gov.yu | | File Size: | 943 | | Last Modified: | Feb 16 14:15:33 2010 |
| MD5 Checksum: | 8fae9924db40b7aba183330d2fc083dd |
|
| /// File Name: |
statcountex-disclose.txt |
Description:
|
StatCounteX suffers from database disclosure and administrative access vulnerabilities.
| | Author: | Phenom | | File Size: | 1219 | | Last Modified: | Feb 12 18:36:27 2010 |
| MD5 Checksum: | 70c27a8921e129d12bd93b0166840e1b |
|
| /// File Name: |
sterlite-xss.txt |
Description:
|
The Sterlite SAM300AX ADSL router suffers from a cross site scripting vulnerability.
| | Author: | Karn Ganeshen | | File Size: | 3038 | | Last Modified: | Feb 5 17:52:04 2010 |
| MD5 Checksum: | fd11bcabddf5e7ce69a97405600ed062 |
|
| /// File Name: |
superenginecms-sql.txt |
Description:
|
Superengine CMS suffers from a remote SQL injection vulnerability.
| | Author: | 10n1z3d | | File Size: | 846 | | Last Modified: | Feb 15 17:32:47 2010 |
| MD5 Checksum: | 9ac3eeb20e14b004a79002c776a82800 |
|
| /// File Name: |
symantec-exec.txt |
Description:
|
Remote command execution exploit for the AMS2 (Alert Management Systems 2) component of multiple Symantec products.
| | Author: | Kingcope | | File Size: | 7063 | | Related CVE(s): | CVE-2009-1429 | | Last Modified: | Feb 4 01:43:55 2010 |
| MD5 Checksum: | f978f77e5fbeaf14861e8acc2a406f0e |
|
| /// File Name: |
symbian-dos.tgz |
Description:
|
This archive has six denial of service exploits that affect the Nokia Symbian S60v3 web browser.
| | Author: | Nishant Das Patnaik | | File Size: | 2891 | | Last Modified: | Feb 12 17:55:53 2010 |
| MD5 Checksum: | 8f6a526c4748e9da0f65d9f2ad4e0a91 |
|
| /// File Name: |
symevcms-sql.txt |
Description:
|
Symev CMS suffers from a remote SQL injection vulnerability.
| | Author: | Metropolis | | File Size: | 880 | | Last Modified: | Feb 20 13:43:48 2010 |
| MD5 Checksum: | 0ce7c0745339ccc89ffad3c0ba5ed6bb |
|
| /// File Name: |
syntaxcms-rfi.txt |
Description:
|
SyntaxCMS versions 1.3 and below suffer from a remote file inclusion vulnerability.
| | Author: | cr4wl3r | | File Size: | 1025 | | Last Modified: | Feb 15 17:02:36 2010 |
| MD5 Checksum: | 5afb5611a16e39533c6f27d8c65e9f2a |
|
| /// File Name: |
thinkphp-xss.txt |
Description:
|
ThinkPHP versions 2.0 and below suffer from cross site scripting vulnerabilities.
| | Author: | zx | | File Size: | 503 | | Last Modified: | Feb 9 14:04:39 2010 |
| MD5 Checksum: | a3dc6ba953b837878aca58c9809fffc8 |
|
| /// File Name: |
timeclock-xsrf.txt |
Description:
|
TimeClock cross site request forgery add administrator exploit.
| | Author: | ViRuSMaN | | File Size: | 2397 | | Last Modified: | Feb 20 13:40:02 2010 |
| MD5 Checksum: | 3bfacf29cc5c18ec223dbb2d9eb2c3ae |
|
| /// File Name: |
tinymce-sqlxss.txt |
Description:
|
TinyMCE suffers from cross site scripting and SQL injection vulnerabilities.
| | Author: | mc2_s3lector | | File Size: | 3808 | | Last Modified: | Feb 8 18:40:13 2010 |
| MD5 Checksum: | b070a6c1bde1b062131fc4fd656a5231 |
|
| /// File Name: |
tinypug-xsrf.txt |
Description:
|
TinyPug suffers from a cross site request forgery vulnerability.
| | Author: | ViRuSMaN | | File Size: | 1879 | | Last Modified: | Feb 23 20:13:25 2010 |
| MD5 Checksum: | 2054be6addf30e4cdf7d0d0b857e9372 |
|
| /// File Name: |
tomcat5526-traversal.txt |
Description:
|
Apache Tomcat versions 4.1.0 through 4.1.37 and 5.5.0 through 5.5.26 suffer from a directory traversal vulnerability.
| | Author: | indoushka | | File Size: | 770 | | Last Modified: | Feb 26 14:13:37 2010 |
| MD5 Checksum: | a27952fc15cbdbe3599544b288d2b98e |
|
| /// File Name: |
tomcat_mgr_deploy.rb.txt |
Description:
|
This Metasploit module can be used to execute a payload on Apache Tomcat servers that have an exposed "manager" application. The payload is uploaded as a WAR archive containing a jsp application using a PUT request. The manager application can also be abused using /manager/html/upload, but that method is not implemented in this module.
| | Author: | jduck | | Homepage: | http://www.metasploit.com | | File Size: | 3822 | | Related OSVDB(s): | 60317 | | Related CVE(s): | CVE-2009-3843 | | Last Modified: | Feb 18 20:47:27 2010 |
| MD5 Checksum: | d73ec93fdbad878f033e319661b1c7c1 |
|
| /// File Name: |
topauktion-sql.txt |
Description:
|
Top Auktion suffers from a remote SQL injection vulnerability.
| | Author: | Easy Laster | | File Size: | 1627 | | Last Modified: | Feb 23 20:00:47 2010 |
| MD5 Checksum: | f08b9fd20da14e02a4ea4a00954f2c60 |
|
| /// File Name: |
trademanager-sql.txt |
Description:
|
Trade Manager Script suffers from a remote SQL injection vulnerability.
| | Author: | JaMbA | | File Size: | 1189 | | Last Modified: | Feb 12 02:42:52 2010 |
| MD5 Checksum: | 8ccb6cb490a8dc560f4f0ca36ad34d2b |
|
| /// File Name: |
trendnettvip201-traversal.txt |
Description:
|
Trendnet TV-IP201 uses an embedded version of the GoAhead WebServer that is vulnerable to directory traversal and authentication bypass attacks.
| | Author: | William Reyor | | File Size: | 703 | | Last Modified: | Feb 16 17:57:47 2010 |
| MD5 Checksum: | 9fa371b656d80544883985482ea8c5be |
|
| /// File Name: |
tribox-sql.txt |
Description:
|
Trixbox version 2.2.4 suffers from a remote SQL injection vulnerability in PhonecDirectory.php.
| | Author: | NorSlacker | | File Size: | 1077 | | Last Modified: | Feb 20 12:37:32 2010 |
| MD5 Checksum: | cd1129948fa822023b87fafceca0a22f |
|
| /// File Name: |
truc-xss.txt |
Description:
|
TRUC version 0.11.0 suffers from a cross site scripting vulnerability.
| | Author: | Snakespc | | File Size: | 805 | | Last Modified: | Feb 28 14:40:05 2010 |
| MD5 Checksum: | b979c8b112cffe784beb90cc93635e35 |
|
| /// File Name: |
twiki_history.rb.txt |
Description:
|
This Metasploit module exploits a vulnerability in the history component of TWiki. By passing a 'rev' parameter containing shell metacharacters to the TWikiUsers script, an attacker can execute arbitrary OS commands.
| | Author: | B4dP4nd4 | | Homepage: | http://www.metasploit.com | | File Size: | 3756 | | Related OSVDB(s): | 19403 | | Related CVE(s): | CVE-2005-2877 | | Last Modified: | Feb 23 01:14:09 2010 |
| MD5 Checksum: | 2484d1f845372d8b4a4a3cc3df399f1e |
|
| /// File Name: |
twiki_search.rb.txt |
Description:
|
This Metasploit module exploits a vulnerability in the search component of TWiki. By passing a 'search' parameter containing shell metacharacters to the 'WebSearch' script, an attacker can execute arbitrary OS commands.
| | Homepage: | http://www.metasploit.com | | File Size: | 3671 | | Related OSVDB(s): | 11714 | | Related CVE(s): | CVE-2004-1037 | | Last Modified: | Feb 23 01:14:32 2010 |
| MD5 Checksum: | 8a1c0adb616767083eb6ecbd1589827c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
